CVE-2018-10675 - Vulncode-DB

CVE-2018-10675 (NVD)

2018-05-02

The do_get_mempolicy function in mm/mempolicy.c in the Linux kernel before 4.12.9 allows local users to cause a denial of service (use-after-free) or possibly have unspecified other impact via crafted system calls.

Products	Ubuntu_linux, Linux_kernel, Enterprise_linux_desktop, Enterprise_linux_server, Enterprise_linux_server_aus, Enterprise_linux_server_eus, Enterprise_linux_server_tus, Enterprise_linux_workstation, Virtualization_host
Type	Use After Free (CWE-416)
First patch	https://github.com/torvalds/linux/commit/73223e4e2e3867ebf033a5a8eb2e5df0158ccc99
Patches	http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=73223e4e2e3867ebf033a5a8eb2e5df0158ccc99
Relevant file/s	./mm/mempolicy.c (modified, -5)
Links	• https://access.redhat.com/errata/RHSA-2018:2924 • https://access.redhat.com/errata/RHSA-2018:3540 • https://access.redhat.com/errata/RHSA-2018:2791 • https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0 • https://www.oracle.com/security-alerts/cpujul2020.html More/Less (11) • https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.12.9 • https://access.redhat.com/errata/RHSA-2018:3586 • https://access.redhat.com/errata/RHSA-2018:3590 • http://www.securityfocus.com/bid/104093 • https://access.redhat.com/errata/RHSA-2018:2164 • https://access.redhat.com/errata/RHSA-2018:2933 • https://access.redhat.com/errata/RHSA-2018:2395 • https://access.redhat.com/errata/RHSA-2018:2384 • https://access.redhat.com/errata/RHSA-2018:2785 • https://usn.ubuntu.com/3754-1/ • https://access.redhat.com/errata/RHSA-2018:2925

linux - Tree: 73223e4e2e

(? files)

Filter Settings

All Files

Relevant Files

Vulnerable Files

Patched Files

Files

VS-Dark VS-Bright Monokai Darcula

Navigation

Patch data:

(on by default)

Patched area: